Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
File: 02QfqO0c_D2qI6qvjDp2_oftW6s.mft (raw, json)
Hash identifier: CsmFB2GTUSj0U4eQFVhq8Vy1B72pSoRh7+lkZDMkhwk=
Subject key identifier: CD:E5:36:32:B4:1B:9B:CF:50:BC:36:A1:63:CB:7E:2E:B8:2D:9C:E6
Authority key identifier: D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
Certificate issuer: /CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Certificate serial: 019D2816900F2861E9ED4CE10B22A94E1F6B
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
Manifest number: 0F56
Signing time: Thu 26 Mar 2026 03:01:00 +0000
Manifest this update: Thu 26 Mar 2026 03:01:00 +0000
Manifest next update: Fri 27 Mar 2026 03:01:00 +0000
Files and hashes: 1: 02QfqO0c_D2qI6qvjDp2_oftW6s.crl (hash: oOM+xcUhS0aKJcCn3MkZksXTi2XSUo1CNxgLM+0RCX8=)
2: byVdI5-pp6NIJu3UrT-3MuGaeXY.roa (hash: l8DHq/5oUA3iWZHNp7UWg+LEjnOk5a1rdRkMplixMAw=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Fri 27 Mar 2026 00:00:38 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:9d:28:16:90:0f:28:61:e9:ed:4c:e1:0b:22:a9:4e:1f:6b
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=d3641fa8ed1cfc3daa23aaaf8c3a76fe87ed5bab
Validity
Not Before: Mar 26 03:01:00 2026 GMT
Not After : Mar 27 03:01:00 2026 GMT
Subject: CN=cde53632b41b9bcf50bc36a163cb7e2eb82d9ce6
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:96:da:4a:1c:ec:f1:01:df:bb:11:dc:22:fd:6f:
f0:8a:b8:55:86:84:2d:e8:bb:ce:2c:fa:32:83:d3:
84:cb:13:3f:81:92:92:34:b3:c7:07:b2:05:a1:81:
0e:07:2b:9e:71:a8:e0:4a:3e:b0:5c:1c:30:92:6f:
b5:83:dd:e6:4e:ab:48:0e:4d:b3:7d:f8:f7:71:e9:
6a:6f:3a:45:1c:14:45:e6:96:d9:2b:57:fb:90:92:
3e:d9:ff:c7:b5:e3:91:85:6b:1d:1a:26:f9:58:62:
d6:d9:91:5f:13:23:cf:66:72:8e:9a:2c:53:a1:5a:
2f:f7:f3:aa:a8:0c:10:b8:3c:90:7e:9f:b0:dc:41:
39:c7:d6:40:be:26:41:9c:3c:25:28:89:4f:de:75:
e2:d0:19:6b:0f:db:dd:e5:31:b9:6a:28:d3:bb:66:
43:f6:95:96:dd:6a:4b:63:e5:43:12:af:40:1c:58:
17:9a:72:eb:d7:2b:f1:c6:a2:e8:da:df:3f:d1:ce:
f7:da:46:f1:29:52:54:3e:2f:44:c9:4b:ca:7a:c7:
b2:fb:36:60:c7:40:8d:a9:78:f5:00:d3:02:12:ba:
48:39:3d:7c:a4:43:bb:8b:45:ca:c4:db:74:81:88:
8c:c2:8d:50:99:45:c5:40:97:1b:95:01:c6:18:d9:
e5:45
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
CD:E5:36:32:B4:1B:9B:CF:50:BC:36:A1:63:CB:7E:2E:B8:2D:9C:E6
X509v3 Authority Key Identifier:
keyid:D3:64:1F:A8:ED:1C:FC:3D:AA:23:AA:AF:8C:3A:76:FE:87:ED:5B:AB
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/02QfqO0c_D2qI6qvjDp2_oftW6s.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/dd/59d109-8b06-4ddd-bc20-9941992c9c24/1/02QfqO0c_D2qI6qvjDp2_oftW6s.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
51:32:bf:37:0a:f2:83:56:81:da:f8:d0:4b:a4:38:a3:c9:bc:
d9:e7:b8:26:e0:37:0c:ec:b7:e0:dd:72:88:90:e8:7c:85:b5:
6f:df:7e:2b:7b:38:66:23:ce:e8:ca:51:f5:88:47:10:bd:cc:
1b:5c:c4:05:24:67:04:f8:ce:e7:9a:45:df:3a:b4:1a:8a:d4:
d0:20:d5:8d:1d:14:99:43:d4:81:01:77:0d:67:21:f0:26:f2:
7b:27:55:59:bd:ab:b0:d9:45:7d:0b:32:ed:26:79:a8:c2:02:
9f:54:fb:09:4a:37:5d:53:4f:d0:f3:06:9d:62:a8:0e:c4:b9:
6a:aa:f0:08:8a:42:e5:71:d4:b3:7d:f5:13:ff:c6:4b:7b:b3:
a1:77:c4:9a:eb:1c:17:eb:f7:f9:ab:14:ef:71:b1:b5:11:70:
b8:40:19:9f:3c:3c:fe:ab:bf:58:c2:1e:f1:0b:56:40:5d:90:
db:5c:12:3a:54:8f:02:57:9f:a4:ba:e1:9c:f5:70:6c:3d:a7:
80:6d:54:ee:39:05:14:8f:aa:ac:f6:d7:46:67:ba:d6:f5:bc:
34:81:12:84:e8:e5:12:62:f7:d5:72:bb:1a:4e:c9:24:e9:ec:
25:3b:df:7c:1e:c5:fc:1a:78:a7:da:03:30:b1:68:cb:3c:39:
a3:49:08:ef
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Mar 26 08:41:10 2026 by rpki-client